Lucene search
K

164 matches found

Cvelist
Cvelist
added 2025/03/27 10:55 a.m.25 views

CVE-2025-30814 WordPress The Post Grid plugin <= 7.7.17 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme The Post Grid the-post-grid allows PHP Local File Inclusion.This issue affects The Post Grid: from n/a through = 7.7.17...

7.5CVSS0.01EPSS
Exploits0References1
CVE
CVE
added 2025/03/27 10:55 a.m.66 views

CVE-2025-30814

CVE-2025-30814 : The Post Grid (The Post Grid) for WordPress is vulnerable to PHP Local File Inclusion via improper filename validation in include/require, leading to a Contributor+ authenticated LFI. Affected: The Post Grid

7.5CVSS7.2AI score0.01EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/03/27 12:0 a.m.6 views

PT-2025-13089 · Radiustheme · Radiustheme The Post Grid

Name of the Vulnerable Software and Affected Versions: RadiusTheme The Post Grid versions n/a through 7.7.17 Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion' vulnerability. This allows PHP...

7.5CVSS9.3AI score0.01EPSS
Exploits0References5
NVD
NVD
added 2025/01/24 6:15 p.m.13 views

CVE-2025-24712

Cross-Site Request Forgery CSRF vulnerability in RadiusTheme Radius Blocks radius-blocks allows Cross Site Request Forgery.This issue affects Radius Blocks: from n/a through = 2.1.2...

5.4CVSS0.00199EPSS
Exploits0References1
CVE
CVE
added 2024/12/13 2:24 p.m.46 views

CVE-2024-54272

CVE-2024-54272 (Radius Blocks – WordPress Gutenberg Blocks) stores input without proper neutralization, enabling Stored XSS in Radius Blocks—WordPress Gutenberg Blocks (affected: up to 2.1.2). Red Hat and Wordfence sources confirm the issue; patch status is Patch, with mitigation by updating to a...

6.5CVSS7.2AI score0.00384EPSS
Exploits0References1
NVD
NVD
added 2024/11/16 10:15 p.m.15 views

CVE-2024-52386

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme Classified Listing classified-listing allows PHP Local File Inclusion.This issue affects Classified Listing: from n/a through = 3.1.16...

5.3CVSS0.00467EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/16 9:18 p.m.12 views

CVE-2024-52386 WordPress Classified Listing plugin <= 3.1.16 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme Classified Listing classified-listing allows PHP Local File Inclusion.This issue affects Classified Listing: from n/a through = 3.1.16...

5.3CVSS7.3AI score0.00467EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/16 9:18 p.m.22 views

CVE-2024-52386 WordPress Classified Listing plugin <= 3.1.16 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme Classified Listing classified-listing allows PHP Local File Inclusion.This issue affects Classified Listing: from n/a through = 3.1.16...

5.3CVSS0.00467EPSS
Exploits0References1
NVD
NVD
added 2024/11/01 3:15 p.m.9 views

CVE-2024-37483

Missing Authorization vulnerability in RadiusTheme The Post Grid the-post-grid.This issue affects The Post Grid: from n/a through = 7.7.4...

5.4CVSS0.00319EPSS
Exploits0References1
NVD
NVD
added 2024/11/01 3:15 p.m.16 views

CVE-2024-37481

Missing Authorization vulnerability in RadiusTheme The Post Grid the-post-grid.This issue affects The Post Grid: from n/a through = 7.7.4...

6.5CVSS0.00336EPSS
Exploits0References1
NVD
NVD
added 2024/11/01 3:15 p.m.18 views

CVE-2024-37482

Missing Authorization vulnerability in RadiusTheme The Post Grid the-post-grid.This issue affects The Post Grid: from n/a through = 7.7.4...

4.3CVSS0.00362EPSS
Exploits0References1
CVE
CVE
added 2024/11/01 2:18 p.m.56 views

CVE-2024-37482

CVE-2024-37482 corresponds to a Missing Authorization (broken access control) vulnerability in The Post Grid (WordPress plugin by RadiusTheme). The Post Grid allows exploitation of misconfigured access control levels, affecting The Post Grid versions from n/a up to 7.7.4. Public disclosures and t...

4.3CVSS5.9AI score0.00362EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/01 2:18 p.m.13 views

CVE-2024-37482 WordPress The Post Grid plugin <= 7.7.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in Post Grid Team by RadiusTheme The Post Grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Post Grid: from n/a through 7.7.4...

4.3CVSS6.9AI score0.00362EPSS
Exploits0References1
CVE
CVE
added 2024/11/01 2:18 p.m.42 views

CVE-2024-37483

CVE-2024-37483 describes a Missing Authorization vulnerability in the WordPress plugin The Post Grid by RadiusTheme. The issue affects The Post Grid versions up to and including 7.7.4 and involves exploitable access control misconfigurations that permit bypassing authorization checks due to Incor...

5.4CVSS5.9AI score0.00319EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/01 2:18 p.m.19 views

CVE-2024-37483 WordPress The Post Grid plugin <= 7.7.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in RadiusTheme The Post Grid the-post-grid.This issue affects The Post Grid: from n/a through = 7.7.4...

5.4CVSS0.00319EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.6 views

PT-2024-27591 · Radiustheme · Post Grid Team

Name of the Vulnerable Software and Affected Versions: Post Grid Team by RadiusTheme versions n/a through 7.7.4 Description: The issue is related to a Missing Authorization vulnerability in the Post Grid Team by RadiusTheme. It allows exploiting incorrectly configured access control security...

4.3CVSS7.2AI score0.00362EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.4 views

PT-2024-27590 · Radiustheme · Post Grid

Name of the Vulnerable Software and Affected Versions: Post Grid Team by RadiusTheme versions through 7.7.4 Description: The issue is related to a Missing Authorization vulnerability, where the Post Grid allows accessing functionality not properly constrained by ACLs. Recommendations: For version...

6.5CVSS6.8AI score0.00336EPSS
Exploits0References4
OSV
OSV
added 2024/07/09 1:15 p.m.5 views

CVE-2024-37520

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons allows Path Traversal.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through 2.1.12...

8.8CVSS5.8AI score0.00577EPSS
Exploits0References1
NVD
NVD
added 2024/07/09 1:15 p.m.26 views

CVE-2024-37520

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through = 2.1.12...

8.8CVSS0.00577EPSS
Exploits0References2
CVE
CVE
added 2024/07/09 12:20 p.m.60 views

CVE-2024-37520

CVE-2024-37520 describes a path traversal (local file inclusion) vulnerability in the ShopBuilder – Elementor WooCommerce Builder Addons WordPress plugin. The flaw affects ShopBuilder versions n/a through 2.1.12 and is listed as an authenticated (Contributor+) issue with LFI via improper pathname...

8.8CVSS5.9AI score0.00577EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder